Patchday: Critical gaps allow attacks on Android 14, 15, 16

Vulnerabilities in the framework, kernel and system endanger smartphones and tablets with Android 14, 15, 16 and 16-qpr2. If you have a device still in the support, make sure that the current security updates are installed.

Other hazards

In addition to Google, Honor and Samsung provide security patches monthly for selected smartphones (see box). As can be seen from an article by Android developers, they have closed numerous vulnerabilities this month, of which 18 are classified as “critical”.

Video by heise

Most of it concerns the system. Here, attackers can obtain higher user rights (CVE-2026-0043) or cancel via DoS attacks (CVE-2026-64505). The framework also includes “critical” vulnerabilities for such attacks (e.g. CVE-2025-65018, CVE-2025-64720). A kernel lap (CVE-2025-40214 “high”) can also serve as a springboard for attackers and give them higher user rights. The remaining vulnerabilities are mostly classified as “high”. In these places information can also leak.

In addition, components of Imagination Technologies, MediaTek, Qualcomm and Unisoc are vulnerable. To date, Google does not have any evidence that attackers already exploit the gaps. If you get security updates for your device, don't hesitate to install patch levels 2026-06-01 or 2026-06-05.

Since July 2025, Google only closes particularly dangerous vulnerabilities every month and distributes further updates quarterly. This month, compared to May, with only one closed vulnerability, was a lot going on.

(des)